Rafflepress ≫ Giveaways And Contests By Rafflepress

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

6.5

CVE-2024-3963

Exploit

EPSS 0.24%
Veröffentlicht 13.07.2024 06:15:02
Zuletzt bearbeitet 09.06.2025 17:07:01

The Giveaways and Contests by RafflePress WordPress plugin before 1.12.14 does not sanitise and escape some parameters, which could allow users with a role as low as editor to perform Cross-Site Scripting attacks

5.3

CVE-2024-32827

EPSS 0.15%
Veröffentlicht 17.05.2024 10:15:11
Zuletzt bearbeitet 21.11.2024 09:15:48

Authentication Bypass by Spoofing vulnerability in RafflePress Giveaways and Contests allows Functionality Bypass.This issue affects Giveaways and Contests: from n/a through 1.12.7.

5.4

CVE-2023-0176

Exploit

EPSS 0.2%
Veröffentlicht 06.02.2023 20:15:13
Zuletzt bearbeitet 25.03.2025 18:15:31

The Giveaways and Contests by RafflePress WordPress plugin before 1.11.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contribut...

Team-orientierte Vulnerability Management Plattform

Features der Plattform

Rafflepress ≫ Giveaways And Contests By Rafflepress

CVE-2024-3963

CVE-2024-32827

CVE-2023-0176